WSJ: Target staff warned of security risks prior to attack

Target's (TGT) computer-security specialists expressed their concerns about weaknesses in the company's payment-card network at least two months before cyber-thieves stole the data of up to 70M people, the WSJ reports.

At least one analyst asked for a more comprehensive security review of the network, although the request was dismissed, at least initially .

From other sites
Comments (6)
  • Bob 88
    , contributor
    Comments (50) | Send Message
    This is another example of bad management in big corporations. It happened numerous times in the company I worked for before. Will this bad management decision cause any harms to Target in the upcoming lawsuits with the Bankers and victims of the security breach?
    16 Feb 2014, 10:46 AM Reply Like
  • Bouchart
    , contributor
    Comments (1174) | Send Message
    Of course the IT staff at Target is going to say they knew about the risks. Does anyone expect them to issue a press release stating that they were completely clueless?
    16 Feb 2014, 11:26 AM Reply Like
  • idkmybffjill
    , contributor
    Comments (1920) | Send Message
    What's worse?


    A. Clueless, and it happened?




    B. They knew about it ahead of time, and it still happened?
    16 Feb 2014, 01:17 PM Reply Like
  • chopchop0
    , contributor
    Comments (5358) | Send Message
    Yup. Just normal CYA statements.
    16 Feb 2014, 09:32 PM Reply Like
  • Bob 88
    , contributor
    Comments (50) | Send Message
    I think the after-fact CYA statements are meaningless and do not have any weight. The news article mentioned there were some internal emails and memo sent by the Target's IT specialist(s) before the security breach. Their recommendations to checkup and upgrade the security systems were either ignored or rejected by management. In addition, most of the specialists left the company about a month before the security breach. Do you think it is normal? I feel there is no sense for the former employees to issue any after-fact CYA statements. The Target management team has sole responsibility and liability of this security breach incident.
    17 Feb 2014, 02:10 PM Reply Like
  • The Rebel
    , contributor
    Comments (2944) | Send Message
    What will be the punishment for Target? Will M/C and Visa terminate their processing? LOL


    But if this was a small business, they could see massive fines from MC/Visa, as well as the threat of termination. And these small businesses are being forced to have quarterly scans of their computers by third party companies as part of the PCI process set up by these credit card companies, and at an additional cost apart from their monthly credit card fees. What a joke!
    16 Feb 2014, 03:54 PM Reply Like
DJIA (DIA) S&P 500 (SPY)
ETF Screener: Search and filter by asset class, strategy, theme, performance, yield, and much more
ETF Performance: View ETF performance across key asset classes and investing themes
ETF Investing Guide: Learn how to build and manage a well-diversified, low cost ETF portfolio
ETF Selector: An explanation of how to select and use ETFs